cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2241
Views
0
Helpful
4
Replies

Can you terminate multiple IPSec tunnels between the same 2 peer endpoints?

jjdennis1
Level 1
Level 1

Hi All.

I am trying to terminate 2 different VRF aware IPSec tunnels between the same pair of public IP peering points.

This is in IOS (on Cisco 2811s).

Each tunnel will have a different VRF & different PSK, but everything else will be the same.

Is this possible?

Thanks,

Jon.

4 Replies 4

Hi,

What kind of configuration are you trying to accomplish?

Each vrf will have static routes or would you run an IGP?

Federico.

Hello.

Normally we run OSPF, and then redistribute into MP-BGP at the PE.

But I can run static routing.

Does this have an impact?

Cheers,

Jon.

No impact, just asking because in plain IPsec tunnels you can't run dynamic routing protocols.

Have you tested yet the scenario?

Federico.

Hey.

Well, these are IPSec tunnels dropped into a VRF (1 vrf per tunnel) so we can do whatever routing we like....

I haven't tested it yet, was just being lazy to see if I could get away without testing! ;-)

Will test 2mor on good old Dynagen and post the results.

Cheers.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: